Spain’s certification and standardization association, AENOR, has handed over to GMV the first certification under the Privacy Information Management ISO 27701, a privacy management extension taking its cue from the Information Security Management standard ISO/IEC 27001 and the Information Security Controls Standard ISO/IEC 27002.

In the presence of AENOR’s CEO, Rafael García Meiro, and Fernando Álvarez-Gascón, manager of GMV’s Secure e-Solutions sector, both organizations expressed their commitment to the most demanding security standards.

From left to right: Rafael García Meiro, AENOR’s CEO, Miriam Ortega Casas, GMV’s information security and privacy consultant, Luis Fernando Álvarez-Gascón, general manager of GMV’s Secure e-Solutions sector, Boris Delgado Riss, AENOR’s ICT certification manager, and Mariano J. Benito, CISO of GMV’s Secure e-Solutions sector

In the words of AENOR’s CEO, «today’s society now demands with increasing urgency that all organizations should be able to prove due diligence in data management. Leading organizations like GMV show the way ahead for all go-getting companies».

Luis Fernando Álvarez-Gascón put it this way: «right from the word go we at GMV have put our faith in duly-certified, standard-based management systems in order to target our goals systematically. Today we are proud to be pioneers beside AENOR once more, taking another stride forward in privacy matters, anticipating our society’s privacy needs ahead of the digital transformation».

Based on the principle of proactive responsibility, this standard ensures due compliance of privacy and data-protection legislation, such as the General Data Protection Regulation (GDPR) or Spain’s Data Protection and Guarantee of National Rights Law (Ley Orgánica de Protección de Datos y Garantía de los Derechos Digitales: LOPDGDD).

Since its first days way back in 1984, GMV has always shown its keenness to certify its systems under the most demanding standards. Today’s certification once more makes GMV a standard-adoption pioneer, as it was back in 2004 with its security certification under ISO 27001 (the doyen security standard in Spain).

The setting up of a Privacy Management System under ISO 27701 has been done single-handedly by GMV, drawing on its experience, methodologies and expert resources in data-protection and cybersecurity management systems.